Security Basics: Sizing the Information Security Department

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Security Basics mailing list archives

Sizing the Information Security Department

From: k7.fantr () gmail com
Date: Thu, 4 Sep 2008 16:22:20 -0600

Hello all.

I am preparing a business case for increasing the size of the Information Security department at the company where I 
work. This is a smaller company with about 700 employees. Right now, I am the security department. :) - I am asking to 
hire 3 security professionals to augment my load and to allow me to focus on more of the strategic needs and higher 
level analysis.

My question is this: Do any of you know of any published recommendations regarding the size of a security department 
based on company size? Any guidance in this regard is appreciated.

Thanks in advance!

By Date By Thread

Current thread:

Sizing the Information Security Department k7 . fantr (Sep 05)
- Re: Sizing the Information Security Department exzactly (Sep 08)
- Re: Sizing the Information Security Department Kurt Buff (Sep 08)
  - RE: Sizing the Information Security Department Kevin A. Zibluk (Sep 08)
    - RE: Sizing the Information Security Department Erin Carroll (Sep 08)
- <Possible follow-ups>
- RE: Sizing the Information Security Department Rob Creely (Sep 08)